Understanding Azure accounts
SCM Azure accounts enable you to connect SCM to Azure registered applications for certificate discovery, enrollment, and issuance.
Azure accounts are used for the following:
-
Azure Key Vault — Discover certificates, and enroll certificates with CSR generation and certificate storage from Azure Key Vault.
-
SCEP Intune — Validate SCEP certificate requests issued through Intune.
-
Intune Exporter — Export client certificates and private keys from SCM to Intune.
|
Azure accounts require the registration of an application in Microsoft Entra (formerly Azure Active Directory). The required configuration of the registered application differs depending on which Azure integration the account is being used with. For more information, see: |
Azure accounts can be managed on the page.
The following table describes the settings and controls of the Azure Accounts page.
| Column | Description |
|---|---|
Name |
The name of the Azure account. |
Environment |
The Azure environment. |
Directory ID |
The Directory (tenant) ID of the application registered in Azure. |
Application ID |
The Application (client) ID of the application registered in Azure. |
Delegation Mode |
The delegation mode of the Azure account. The possible values are:
|
Table controls |
|
Refresh |
Refreshes the information presented in the table. |
Admin controls |
|
Add |
Opens the Add Azure Account dialog where you can add a new Azure account. |
Delete |
Removes the selected Azure account. |
Edit |
Opens the Edit Azure Account dialog where you can manage an existing Azure account. |
Delegate |
Opens the Delegate Azure Account dialog where you can manage the Azure account’s delegation. |